Back to search

Java CPU October 2012 Java Runtime Environment Swing vulnerability (CVE-2012-5084)

Severity CVSS Published Added Modified
8 (AV:N/AC:H/Au:N/C:C/I:C/A:C) October 16, 2012 October 17, 2012 December 04, 2013

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.2_38 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Swing.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

  • Oracle JRE >= 1.4.0.0 and < 1.4.2.39

    Upgrade to Oracle Java version 1.4.2.39

    Upgrade your copy of the Java Runtime Environment to 1.4.2.39, which can be downloaded from here. Note that this version requires Oracle Java SE Support, otherwise it is recommended to upgrade to the latest public JRE.

  • Oracle JRE >= 1.5.0.0 and < 1.5.0.37

    Upgrade to Oracle Java version 1.5.0.37

    Upgrade your copy of the Java Runtime Environment to 1.5.0.37, which can be downloaded from here. Note that this version requires Oracle Java SE Support, otherwise it is recommended to upgrade to the latest public JRE.

  • Oracle JRE >= 1.6.0.0 and < 1.6.0.36

    Upgrade to Oracle Java version 1.6.0.36

    Upgrade your copy of the Java Runtime Environment to 1.6.0.36, which can be downloaded from here.

  • Oracle JRE >= 1.7.0.0 and < 1.7.0.8

    Upgrade to Oracle Java version 1.7.0.8

    Upgrade your copy of the Java Runtime Environment to 1.7.0.8, which can be downloaded from here.

Related Vulnerabilities